// Copyright 2024 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "base/memory/protected_memory.h" #include #if BUILDFLAG(IS_LINUX) || BUILDFLAG(IS_ANDROID) #include #endif // BUILDFLAG(IS_LINUX) #if BUILDFLAG(IS_MAC) #include #include #endif // BUILDFLAG(IS_MAC) #include "base/bits.h" #include "base/memory/page_size.h" namespace base { #if BUILDFLAG(PROTECTED_MEMORY_ENABLED) namespace { bool SetMemory(void* start, void* end, int prot) { CHECK(end > start); const uintptr_t page_start = bits::AlignDown(reinterpret_cast(start), GetPageSize()); return mprotect(reinterpret_cast(page_start), reinterpret_cast(end) - page_start, prot) == 0; } } // namespace namespace internal { #if BUILDFLAG(IS_LINUX) || BUILDFLAG(IS_ANDROID) void CheckMemoryReadOnly(const void* ptr) { const uintptr_t page_start = bits::AlignDown(reinterpret_cast(ptr), GetPageSize()); // Note: We've casted away const here, which should not be meaningful since // if the memory is written to we will abort immediately. int result = getrlimit(RLIMIT_NPROC, reinterpret_cast(page_start)); CHECK(result == -1 && errno == EFAULT); } #elif BUILDFLAG(IS_MAC) void CheckMemoryReadOnly(const void* ptr) { mach_port_t object_name; vm_region_basic_info_64 region_info; mach_vm_size_t size = 1; mach_msg_type_number_t count = VM_REGION_BASIC_INFO_COUNT_64; kern_return_t kr = mach_vm_region( mach_task_self(), reinterpret_cast(&ptr), &size, VM_REGION_BASIC_INFO_64, reinterpret_cast(®ion_info), &count, &object_name); CHECK(kr == KERN_SUCCESS && region_info.protection == VM_PROT_READ); } #endif } // namespace internal bool AutoWritableMemoryBase::SetMemoryReadWrite(void* start, void* end) { return SetMemory(start, end, PROT_READ | PROT_WRITE); } bool AutoWritableMemoryBase::SetMemoryReadOnly(void* start, void* end) { return SetMemory(start, end, PROT_READ); } #endif // BUILDFLAG(PROTECTED_MEMORY_ENABLED) } // namespace base